CVE-2026-6736

Name of the Vulnerable Software and Affected Versions GitHub Enterprise Server versions prior to 3.21

Description An authentication bypass allows an unauthenticated attacker to create a local user account, bypassing the configured external identity provider. When external authentication is enabled, the 'signup' endpoint fails to properly enforce authentication restrictions, enabling account creation and session establishment without identity provider validation. The resulting account is limited to the default base permissions of the instance. Exploitation requires network access to an instance configured with an external authentication provider.

Recommendations Update to version 3.20.2, 3.19.6, 3.18.9, 3.17.15, or 3.16.18.